Details

      Description

      See http://burtbeckwith.com/blog/?p=1398 for the motivation

        Activity

        Hide
        Graeme Rocher added a comment -

        Why role.properties and not in SecurityConfig.groovy or Config.groovy?

        Show
        Graeme Rocher added a comment - Why role.properties and not in SecurityConfig.groovy or Config.groovy?
        Hide
        Steve Scherer added a comment - - edited

        We have been trying to figure out how to do this. DRY was one reason, but the more important reason was to make changes to the @Secured roles less cumbersome in production. Building a new version and redeploying the app to production is an expensive proposition at most of our customers and requires a full-blown software release process. For that reason, we externalize all but a few specific configuration properties in an external Config.groovy that can be administratively changed without an application release (we use external-config-reload).

        Summary: Our customers would get a lot more value from this JIRA if the @Authorities lists could be obtained from the app config and therefore be externalize-able and (via plugin) reloadable

        Show
        Steve Scherer added a comment - - edited We have been trying to figure out how to do this. DRY was one reason, but the more important reason was to make changes to the @Secured roles less cumbersome in production. Building a new version and redeploying the app to production is an expensive proposition at most of our customers and requires a full-blown software release process. For that reason, we externalize all but a few specific configuration properties in an external Config.groovy that can be administratively changed without an application release (we use external-config-reload). Summary: Our customers would get a lot more value from this JIRA if the @Authorities lists could be obtained from the app config and therefore be externalize-able and (via plugin) reloadable
        Hide
        Ben McGuire added a comment -

        Looks like this has been solved with the new GrantedAuthoritiesMapper that is added to each of the providers. There are a couple different implementations, and I think it would help out with what you are trying to do here.

        Show
        Ben McGuire added a comment - Looks like this has been solved with the new GrantedAuthoritiesMapper that is added to each of the providers. There are a couple different implementations, and I think it would help out with what you are trying to do here.
        Hide
        Burt Beckwith added a comment -
        Show
        Burt Beckwith added a comment - GPSPRINGSECURITYCORE-181

          People

          • Assignee:
            Burt Beckwith
            Reporter:
            Burt Beckwith
          • Votes:
            2 Vote for this issue
            Watchers:
            4 Start watching this issue

            Dates

            • Created:
              Updated:
              Resolved: